I replied directly to your posted question this morning.
This error is indicating that there was a 500 error response from the admin-ajax.php on the login page.
You can disable the login security by removing the first line of code that was added to your wp-config.php file.
You should also check the error_log files on your server to see what this 500 error is about.
If you want me to help you fix this directly you can email me with your FTP login and I’ll do it for you.
I just release me new version 4.15.43 which has the Quick Scan option for Core Files.
Please try it out and let me know what you think.
That is the manual update method. I don’t know what is blocking the update on your site but I’m sure the Automatic Update method will work for you.
If you are willing to send me your wp-admin login I will take a look at why you cannot save the updates.
So That means that it was probably a Core File that was infected. I will add a Quick Scan for the Core Files in the next release of my plugin so that kind of infection can be found more easily.
The custom output buffer handler called “Bot_Linker” is probably malicious and it’s probably the reason the Complete Scan is not working. Output buffer handlers can filter or alter the output and thus affect anything or everything on your site.
Have you tried the Quick Scans?
If you keep getting reinfected then you should move your site to a move secure server.
The last definition update should solve these errors for you. If you still get them after you download the update let me know.
Also, if that wp-content/index.php file is not identified and fixed by my plugin after this latest update then please send that file to me so that I can inspect it personally.
That’s a great suggestion for anyone with a site that is not WordPress.
Your server either does not allocate enough memory to PHP to clean all 2,881 files at one time or the process is timing out before it finishes. Either way you just need to click the auto-fix button 6 times (one more time after each failure) for it to finish fixing all the infected files.
It would also be a good idea to run the Complete Scan again after you are done, just to make sure it got them all and they are not coming back.
For future reference, you can try the “fix as you go” method when running large scans like this one. Just click the fix button each time the scan finds a few hundred infections and the scan will keep going but it will also clean the malicious threats that it has already found, so that by the time you are done scanning you can also be nearly done cleaning. That way it won’t get hung up trying to clean thousands of infected files at once.
Please email me directly with the sites and key that you are having trouble with and I will help you sort it out.
eli AT gotmls DOT net
You can login to gotmls.net with that email and go to the Members page (click the profile link) to see all the sites you have registered under that account. If you have registered other sites under a different email address then you can login to that account and transfer your registrations to the other account.
If you cannot find what account was used to register a specific site you can email me directly.
Actually in the case of ecolcin.com your WordPress URL is http://portal.ecolcin.com not http://ecolcin.com/portal so this is not technically a subdirectory install. It may be that the site is installed inside a sub-directory that is inside public_html but WordPress does not see it that way. If you have a site that is in the root public_html directory then you can user that site to scan nall the other sites inside it.
Yes, it should offer you this option automatically.
Only 3 of the 47 sites you have registered are in subfolders and I don’t see any of them installed in a wordpress folder. Can you tell me which site this is for?
Those files show up in the potential threats because they use the eval function but they should be ok to whitelist. Just make sure that it’s only a simple eval statement that it highlighted in those files before you whitelist.
Check for new definition updates. If you already have the latest definitions and it’s still not finding anything then you can send me a login and I will take a look at it tomorrow (it’s getting late here).
